Lucene search
K

4 matches found

CNVD
CNVD
added 2019/12/04 12:0 a.m.3 views

Red Hat JBoss BRMS Cross-Site Scripting Vulnerability

Red Hat JBoss BRMS is a suite of platforms for the development of containerized microservices and applications to automate business decisions from Red Hat, USA. A cross-site scripting vulnerability exists in Red Hat JBoss BRMS versions prior to 5.1.0, which stems from a lack of proper validation ...

6.1CVSS6.3AI score0.00855EPSS
Exploits0References1
NVD
NVD
added 2015/02/20 4:59 p.m.25 views

CVE-2014-0005

PicketBox and JBossSX, as used in Red Hat JBoss Enterprise Application Platform JBEAP 6.2.2 and JBoss BRMS before 6.0.3 roll up patch 2, allows remote authenticated users to read and modify the application sever configuration and state by deploying a crafted application...

3.6CVSS6AI score0.00799EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2014/04/03 9:19 p.m.7 views

Drools: Remote Java Code Execution in MVEL

JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a 1 MVFLEX Expression Language MVEL or 2 Drools expression...

6.5CVSS6.2AI score0.01968EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2013/10/17 5:17 p.m.6 views

commons-fileupload: Arbitrary file upload via deserialization

The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance...

7.5CVSS6.9AI score0.12768EPSS
Exploits0References4
Rows per page
Query Builder